Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Sign up
Appearance settings

Commit db701c9

Browse files
Update README.md
1 parent ff03aea commit db701c9

File tree

1 file changed

+14
-0
lines changed

1 file changed

+14
-0
lines changed

‎README.md‎

Lines changed: 14 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -26,3 +26,17 @@ https://user-images.githubusercontent.com/91306853/217299424-6736d728-6803-4134-
2626

2727
https://user-images.githubusercontent.com/91306853/217300011-db834337-70d2-4985-926e-0970e7f8e78e.mp4
2828

29+
## Test 3 : Broken user authentication by removing auth token
30+
31+
Step 1: Set attacker token
32+
Step 2: Observe api (Feedbacks endpoint in this case)
33+
Step 3: Select this endpoint
34+
Step 4: Click on Run test with just Broken Auth
35+
Step 5: Wait for test result
36+
Step 6: Check original attempt has auth token
37+
Step 7: Test attempt doesn't have token, yet it succeeded - Broken user authentication vulnerability found. :key:
38+
39+
40+
https://user-images.githubusercontent.com/91306853/219386085-820ef832-3679-4d2c-9a7f-6af499923d21.mov
41+
42+

0 commit comments

Comments
(0)

AltStyle によって変換されたページ (->オリジナル) /